25acb221ff1923f27cdfe80553cb27e7b2b687e5bc76d5637b83225eedfe40d5

Sharing

Copy URL Twitter E-mail

General

Target

25acb221ff1923f27cdfe80553cb27e7b2b687e5bc76d5637b83225eedfe40d5
Size

200KB
MD5

47537adad4a985689ca4e5cad80b0790
SHA1

4e886222735106e6b3871f897db0696ecbf0c73d
SHA256

25acb221ff1923f27cdfe80553cb27e7b2b687e5bc76d5637b83225eedfe40d5
SHA512

f84f4c870678b8fa1ad618247d68033dc1aeba3c3099f00bd301e19472746131cff60597e900d2bbc965eec1f22c0d267014aeaee7fd724aa55d6d4a72e8ed80
SSDEEP

3072:/AkCFSvPd6FCHH3on3d9bnq0Ag0Fum5Y26iZPH81ghh4Y3YXypm8Dx:/AkCFSLHs3/VAOD2T+PPz

Score

N/A

Malware Config

Signatures

Files

25acb221ff1923f27cdfe80553cb27e7b2b687e5bc76d5637b83225eedfe40d5
.dll windows x86

b2c320eeb4fff3ef29cfd17eb7f009be

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
GetLastError
HeapFree
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
HeapAlloc
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlUnwind
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
RaiseException
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
VirtualAlloc
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
MultiByteToWideChar
CloseHandle
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
SetFilePointer
LoadLibraryA
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetModuleHandleA

Exports

Exports

Shuame

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2c320eeb4fff3ef29cfd17eb7f009be

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 6KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 8KB - Virtual size: 8KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 6KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 8KB - Virtual size: 8KB

.rmnet
Size: 56KB - Virtual size: 60KB